ACLs, pronounced “ackkls”, can provide greater control over file permissions. You add ACLs when the traditional UNIX file protection in the Solaris operating environment is not sufficient. The traditional UNIX file protection provides read, write, and execute permissions for the three user classes: owner, group, and other. An ACL provides finer-grained file security. ACLs enable you to define the following file permissions:
Owner file permissions
Owner's group file permissions
File permissions for other users who are outside the owner's group
File permissions for specific users
File permissions for specific groups
Default permissions for each of the previous categories
For step–by–step instructions on using ACLs, see Using Access Control Lists (ACLs).
The following table lists the commands for administering ACLs on files or directories.
Table 2–4 Access Control List (ACL) Commands
Command |
Description |
Man Page |
---|---|---|
setfacl |
Sets, adds, modifies, and deletes ACL entries | |
getfacl |
Displays ACL entries |